Re: Popular Net anonymity service back-doored

From: Aron Nimzovitch (cryptoat_private)
Date: Thu Aug 21 2003 - 14:41:33 PDT

Next message: nimber: "Buffer overflow in Avant Browser 8.02"

Previous message: http-equivat_private: "Re: EEYE: Internet Explorer Object Data Remote Execution Vulnerability"
In reply to: Thomas C. Greene : "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Next in thread: Drew Copley: "RE: Popular Net anonymity service back-doored"
Next in thread: Thomas C. Greene : "Re: Popular Net anonymity service back-doored"
Reply: Drew Copley: "RE: Popular Net anonymity service back-doored"
Reply: Barney Wolff: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Reply: David Schwartz: "[Full-Disclosure] RE: Popular Net anonymity service back-doored"
Reply: Drew Copley: "[Full-Disclosure] RE: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "Re: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

   Mailing-List: contact bugtraq-helpat_private; run by ezmlm
   From: "Thomas C. Greene " <thomas.greeneat_private>
   Organization: The Register

   Leaving a hint in the source and waiting for someone to call them on it may be 
   a legal strategem, but it's not a good way of maintaining user
   trust.

Only a fool would blindly depend on someone else's software to gain
anonymity without examining the code.  If you need anonymity, then you
should easily be willing to invest sweat equity, or have a contractual
arrangement when the threat is only financial.  For more serious
threats requiring anonymity, not reviewing the source when it is
available seems beyond stupid.  I could unserstand your ire if you
were one of our clients, but this was a free service wasn't it?

FAR

Next message: nimber: "Buffer overflow in Avant Browser 8.02"
Previous message: http-equivat_private: "Re: EEYE: Internet Explorer Object Data Remote Execution Vulnerability"
In reply to: Thomas C. Greene : "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Next in thread: Drew Copley: "RE: Popular Net anonymity service back-doored"
Next in thread: Thomas C. Greene : "Re: Popular Net anonymity service back-doored"
Reply: Drew Copley: "RE: Popular Net anonymity service back-doored"
Reply: Barney Wolff: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Reply: David Schwartz: "[Full-Disclosure] RE: Popular Net anonymity service back-doored"
Reply: Drew Copley: "[Full-Disclosure] RE: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "Re: Popular Net anonymity service back-doored"
Reply: Bernhard Kuemel: "[Full-Disclosure] Re: Popular Net anonymity service back-doored"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Aug 21 2003 - 15:54:30 PDT